Alerts
Microsoft Out of Band Patch for Vector Markup Language Flaw
Date:
September 26, 2006
Severity:
High
Systems Affected:
Internet Explorer 5.01 SP4
Internet Explorer 6 SP1
Overview:
Today Microsoft released an out of band patch for the Vector Markup Language remote code execution vulnerability that we saw exploited in the wild. Previous to the Microsoft release, we saw a third party patch released by a newly formed group known as the Zero Day Emergency Response Team (ZERT) which has now been withdrawn in favor of the official vendor patch.
For those that followed the press on this issue you will remember it as being originally discovered on specific adult entertainment websites and attempting to install "botnet" software.
If you installed the third party patch for this, you will want to remove it before you install the official Microsoft Patch which you can find via Windows Update or via the Microsoft Security Bulletin MS06-050.
In addition, Microsoft also, re-released MS06-049 to deal with an issue, outlined in Microsoft Knowledge Base Article 920958, with users using NTFS file system compression experiencing file corruption under specific circumstances.
Detection:
Users of eEye Digital Security Retina should update their audits in order to scan for this vulnerability.
Prevention:
Users of eEye Digital Security Blink are proactively protected against this vulnerability as long as Application Protection is enabled.
September 26, 2006
Severity:
High
Systems Affected:
Internet Explorer 5.01 SP4
Internet Explorer 6 SP1
Overview:
Today Microsoft released an out of band patch for the Vector Markup Language remote code execution vulnerability that we saw exploited in the wild. Previous to the Microsoft release, we saw a third party patch released by a newly formed group known as the Zero Day Emergency Response Team (ZERT) which has now been withdrawn in favor of the official vendor patch.
For those that followed the press on this issue you will remember it as being originally discovered on specific adult entertainment websites and attempting to install "botnet" software.
If you installed the third party patch for this, you will want to remove it before you install the official Microsoft Patch which you can find via Windows Update or via the Microsoft Security Bulletin MS06-050.
In addition, Microsoft also, re-released MS06-049 to deal with an issue, outlined in Microsoft Knowledge Base Article 920958, with users using NTFS file system compression experiencing file corruption under specific circumstances.
Detection:
Users of eEye Digital Security Retina should update their audits in order to scan for this vulnerability.
Prevention:
Users of eEye Digital Security Blink are proactively protected against this vulnerability as long as Application Protection is enabled.
